Re: [ovs-dev] [PATCH v2] datapath-windows: Add validations in fragmentation module

On Fri, Jun 09, 2017 at 07:54:45PM -0700, Anand Kumar wrote: > - Minimum valid fragment size is 400 bytes, any fragment smaller > is likely to be intentionally crafted (CVE-2000-0305). > > - Validate maximum length of an Ip datagram > > - Added counters to keep track of number of fragments for a

Re: [ovs-dev] [PATCH v2] datapath-windows: Add validations in fragmentation module

Thanks for adding in the CVE. Acked-by: Sairam Venugopal On 6/9/17, 7:54 PM, "ovs-dev-boun...@openvswitch.org on behalf of Anand Kumar" wrote: >- Minimum valid fragment size is 400 bytes, any fragment smaller >is likely to be intentionally crafted (CVE-2000-0305). > >- Validate maximum le

Re: [ovs-dev] [PATCH v2] datapath-windows: Add validations in fragmentation module

On 6/9/17, 7:54 PM, "ovs-dev-boun...@openvswitch.org on behalf of Anand Kumar" wrote: - Minimum valid fragment size is 400 bytes, any fragment smaller is likely to be intentionally crafted (CVE-2000-0305). - Validate maximum length of an Ip datagram - Added counters t

[ovs-dev] [PATCH v2] datapath-windows: Add validations in fragmentation module

- Minimum valid fragment size is 400 bytes, any fragment smaller is likely to be intentionally crafted (CVE-2000-0305). - Validate maximum length of an Ip datagram - Added counters to keep track of number of fragments for a given Ip datagram. Signed-off-by: Anand Kumar Acked-by: Alin Gabriel Se